What is claimed is: 

1. A computer-readable medium having computer-executable 
instructions for performing steps for handling an address 

5 change of a mobile host communicating with a correspondent 
host over an existing connection, the steps comprising: 

deprecating, by the mobile host, an old address of the 
mobile host; 

sending, by the mobile host, an address change message to 
10 the correspondent host over a secured control channel ; 

returning, by the correspondent host upon receiving the 
^ address change message, an acknowledgment to the mobile host 

^ over the secured control channel ; 
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;M modifying, by the correspondent host, security filters 

^ 15 and transport control parameters maintained by the 

correspondent host for the connection with the mobile host to 
;3 use the new address of the mobile host; 

3 modifying, by the mobile host upon receiving the 

acknowledgment from the correspondent host, security filters 
20 and transport control parameters maintained by the mobile host 

for the connection to use the new address of the mobile host. 

2. A computer-readable medium as in claim 1, wherein the 
step of deprecating includes removing routing entries using 

25 the old address from a routing table of the mobile host and 

adding a tunneling entry based on the old and new addresses in 
the routing table, and wherein the step of sending transmits 



the address change message through the tunnel, and the step of 
returning transmits the acknowledgment through the tunnel. 

3. A computer-readable medium as in claim 2, wherein the 
5 secured control channel is through implementation of a 
security protocol. 
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4. A computer-readable medium as in claim 3, wherein the 
security protocol is the IPSEC protocol. 



5. A computer-readable medium as in claim 1, wherein the 
steps of sending the address change message and modifying by 
the mobile host are performed by a mobility service of the 
mobile host, and the steps of returning the acknowledgment and 
15 modifying by the correspondent host are perf ormed^by a 
mobility service of the correspondent host. 



□ 6. A computer-readable medium as in claim 5, wherein the 

mobility services of the mobile host and the correspondent 
20 . host are OAKLEY protocol services. 



7. A computer-readable medium as in claim 2, wherein the 
step of modifying by the mobile host includes removing the 
tunneling entry from the routing table. 
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8, A computer-readable medium as in claim 1, wherein the 
connection between the mobile host and the correspondent host 
is established under the Transmission Control Protocol (TCP) . 

5 9. A computer-readable medium as in claim 1, wherein the 

connection between the mobile host and the correspondent host 
is established under the User Datagram Protocol (UDP) . 

10. A computer-readable medium as in claim 1, wherein 
10 the step of modifying by the correspondent host includes 

maintaining security filters and transport control parameters 
using the old address of the mobile host active during a pre- 
selected period of time. 

15 11. A computer-readable medium as in claim 1, wherein 

the computer-executable instructions are part of a computer 
operating system. 

12. A computer-readable medium having computer- 
20 executable instructions for performing steps by a mobile host 
communicating with a' correspondent host over an existing 
connection to handle an address change of the mobile host from 
an old address to a new address, the steps comprising: 
deprecating the old address; 
25 sending an address change message to the correspondent 

host over a secured control channel; 



receiving an acknowledgment of receipt of the address 
change message from the correspondent host over the secured 
control channel; and 

modifying security filters and transport control 
5 parameters maintained by the mobile host for the connection to 
use the new address of the mobile host. 

13. A computer-readable medium as in claim 12, wherein 
the step of deprecating includes removing routing entries 
10 using the old address from a routing table of the mobile host 
and adding a tunneling entry based on the old and new 
^ addresses in the routing table, and wherein the step of 

.'^ sending transmits the address change message through the 

j ^ tunnel, and the step of receiving receives the acknowledgment 

^ 15 through the tunnel. 
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□ 14. A computer-readable medium as in claim 13, wherein 

rj the secured control channel is through implementation of a 

security protocol. 

20 

15. A computer-readable medium as in claim 14, wherein 
the security protocol is the IPSEC protocol. 

16. A computer-readable medium as in claim 13,. wherein 
25 the steps of sending the address change message and modifying 

the transport control parameters and the security filters are 
performed by a mobility service of the mobile host. 



17. A computer-readable medium as in claim 16, wherein 
the mobility service of the mobile host is an OAKLEY protocol 
service. 
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18. A computer-readable medium as in claim 13, wherein 
the step of modifying ■ includes removing the tunneling entry 
from the routing table-. 

10 19. A computer-readable medium as in claim 12, wherein 

™ the connection with the correspondent host is established 

'" s if under the Transmission Control Protocol (TCP) . 

! =y 20. A computer-readable medium as in claim 12, wherein 

15 the connection with the correspondent host is established 
under the User ■ Datagram Protocol (UDP) . 
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Q 21. A computer-readable medium as in claim 12, wherein 

the computer-executable instructions are part of a computer 
20 operating system. 

22. A computer-readable medium having computer- 
executable instructions for performing steps by a 
correspondent host communicating with a mobile host over an 
25 existing connection to handle an address change of the mobile 
host from an old address to a new address, the steps 
comprising: 
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35 

receiving an address change message from the mobile host 
over a secured control channel; 

returning an acknowledgment of receipt of the address 
change message to the mobile host over the secured control 
channel; 

modifying security filters and transport control 
parameters maintained by the correspondent host for the 
connection with the mobile host to use the new address of the 
mobile host . 



3 23. A computer-readable medium as in claim 22, wherein 

~ the step of receiving receives the address change message 

1 through a tunnel based on the old and new addresses of the 

if mobile host, and the step of returning includes removing 

15 routing entries using the old address from a routing table of 
the correspondent host and adding a tunneling entry based on 



^ the old and new addresses in the routing table for delivering 



□ the acknowledgement through the tunnel. 

20 24. A computer-readable medium as in claim 23, wherein 

the secured control channel is through implementation of a 
security protocol. 
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25. A computer-readable medium as in claim 24, wherein 
the security protocol is the IPSEC protocol. 
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26. A computer-readable medium as in claim 23, wherein 
the steps of returning and modifying are performed by a 
mobility service of the correspondent host. 

5 27. A computer-readable medium as in claim 25, wherein 

the mobility service of the correspondent host is an OAKLEY 
protocol service. 
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28. A computer-readable medium as in claim 23, wherein 
10 the step of modifying includes removing the tunneling entry 

from the routing table. 

29. A computer-readable medium as in claim 22, wherein 
the connection is established under the Transmission Control 

15 Protocol (TCP) . 
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u3 30. A computer-readable medium as in. claim 22, wherein 

□ the connection is established under the User Datagram Protocol 

(UDP) . 

20 . - 

31. A computer-readable medium as in claim 22, wherein 
the step of modifying by the correspondent host includes 
maintaining security filters and transport control parameters 
using the old address of the mobile host active during a pre- 

25 selected period of time. 



32. A computer-readable medium as in claim 22, wherein 
the computer-executable instructions are part of a computer 
operating system. 

33. A method for handling an address change of a mobile 
host communicating with a correspondent host over an existing 
connection, comprising the steps of: 

deprecating, by the mobile host, an old address of the 
mobile host; 

sending, by the mobile host, an address change message to 
the correspondent host over a secured control channel ; 

returning, by the correspondent host upon receiving the 
address change message, an acknowledgment to the mobile host 
over the secured control channel ; 

modifying, by the correspondent host, security filters 
and transport control parameters maintained by the 
correspondent host for the connection with the mobile host to 
use the new address of the mobile host; 

. modifying, by the mobile host upon receiving the 
acknowledgment from the correspondent host, security filters 
and transport control parameters maintained by the mobile host 
for the connection to use the new address of the mobile host. 

34. A method as in claim 33, wherein the step of 
deprecating includes removing routing entries using the old 
address from a routing table of the mobile host and adding a 
tunneling entry based on the old and new addresses in the 



routing table, and wherein the step of sending transmits the 
address change message through the tunnel, and the step of 
returning transmits the acknowledgment through the tunnel. 

35. A method as in claim 33, wherein the secured control 
channel is through implementation of a security protocol. 



